Privacy Policy

Protecting personal data and your privacy is of greatest concern for Nordiina.

Principles
About this Privacy Policy

This Privacy Policy intends to establish a clear, concise and transparent communication on the collection, use, processing, storing etc. of personal data relating to customers of Nordiina.

Within the meaning of this Privacy Notice “customer of Nordiina” means a former, current and potential customer or seller or user of a product or service offered by Nordiina or a visitor to one of our websites.

Who is responsible for processing of your personal data?

The Finnish company, Nordiina Oy (www.nordiina.com) is primarily responsible for the processing of personal data within the scope of this Privacy Policy. Nordiina is an online marketplace for Nordic designer goods where sellers and buyers can meet and make safe and easy purchases.

We collect, use and are responsible for certain personal information about you. When we do so we are regulated under the General Data Protection Regulation which applies across the European Union and we are responsible as ‘controller’ of that personal information for the purposes of those laws.

Our website and services

This privacy policy relates to your use of our website and services.

Throughout our website we may link to other websites owned and operated by certain third parties to. These other third party websites may also gather information about you in accordance with their own separate privacy policies. For privacy information relating to these other third party websites, please consult their privacy policies as appropriate.

Personal information we collect about you

We may collect and use the following personal information about you:

  • your name and contact information, including email address and telephone number
  • Information to enable us to check and verify your identity, eg. your date of birth
  • location data
  • your contact history, purchase history and saved items
  • information from accounts you link to us, eg. Facebook
  • Information about how you use our website, IT, communication and other systems
  • your responses to surveys, competitions and promotions

This personal information is required to provide services to you. If you do not provide personal information we ask for, it may delay or prevent us from providing services to you.

How your personal information is collected

We collect most of this personal information directly from you—in person, by telephone, text or email and via our website and apps. However, we may also collect information:

  • from cookies on our website—for more information on our use of cookies, please see our cookie policy [Click Here].
  • via our IT systems
  • Google analytics
  • The Facebook Pixel
  • LinkedIn Insight
 
Where do we store your data?

The personal data that we collect from you is generally stored within a country of the European Union or the European Economic Area (“EU/EEA”).

 

Who has access to your data?

Your personal data is available and accessible only by those who need the data to accomplish the intended processing purpose. To the extent necessary, your personal data may be shared with suppliers, sub-contractors and independent third-parties (acting as processors and sub-processors) carrying out certain tasks on Nordiina’s behalf. When you make an order on Nordiina.com, your personal data will be shared with the relevant seller of your purchase. The seller acts as an independent data controller. The seller is responsible of adequate GDPR level protection of your necessary personal data by contractual arrangements. As a customer, you need to read and accept the Sellers’ privacy policies before purchasing.

Keeping your personal information secure

We have appropriate security measures in place to prevent personal information from being accidentally lost, or used or accessed in an unauthorised way. We limit access to your personal information to those who have a genuine business need to know it. Those processing your information will do so only in an authorised manner and are subject to a duty of confidentiality.

We also have procedures in place to deal with any suspected data security breach. We will notify you and any applicable regulator of a suspected data security breach where we are legally required to do so.

What is the legal ground for processing?

Nordiina is not allowed to collect, process, use, store etc. personal data without a valid legal ground. Lawfulness may be derived from your consent, by contract, statutory obligations or from our legitimate interest as a business.

Cookies and other tracking technologies

A cookie is a small text file which is placed onto your device (eg. computer, smartphone or other electronic device) when you use our website. We use cookies on our website. These help us recognise you and your device and store some information about your preferences or past actions.

You can block the use of cookies in your browser or set your browser to warn you when you try to set cookies. Please note that when you do this, some functionality of the service may not work properly. To learn more about cookies and how to delete them, visit http://www.allaboutcookies.org/.

Our services use Google Analytics and other analytics tools to generate reports on the use of our websites so that we can improve our pages as well as our services. To learn more about Google Analytics, visit http://www.google.com/analytics. You can opt out of data collection by Google Analytics by downloading an add-on for your browser from https://tools.google.com/dlpage/gaoptout

This website uses social media plugins of various social networks. These plugins are functions of the respective social network that enable you to share content from our website with your contacts in the social networks or to recommend this content, for example. The social media plugins can be recognized by the logo of the respective social network.

We use social media plugins from the following social network operators:

Facebook

Twitter

Pinterest

LinkedIn

WhatsApp

LinkedIn

On our website, all social media plugins with the exception of YouTube are generally deactivated by default, which means that simply accessing our website does not result in any data being transferred to the social network providers. If you want to use the functionality of the respective social network and therefore activate an initially deactivated social media plugin, you are expressly consenting for data to be transferred to the social network operator from that time forward. We have no influence on the scope of data collected in this way by the providers of social networks.

Through the integration of the plugin, the operators of the social networks receive the information that you accessed the respective pages of our online presence. If you are at the same time logged in to a social network, the operator can associate these page views with your account on the respective social network. If you then go on to interact with the social media plugins, e.g., clicking the Facebook “Like” button, that information is also transmitted to the respective social network.

For details about the purpose and scope of data processing, collection and use by the social networks used by us and your rights and setting options in this regard, please consult the privacy policies of the social networks:

Moreover, you may be able to render data transmission to social media networks technically impossible. To do so, please adjust the security settings in your web browser, for instructions on how to do so, please consult the “Help” section in your web browser. Furthermore, in individual cases, it is possible to block social media plugins using add-ons for your browser

Marketing

We would like to send you information about products and services, competitions, and special offers, which may be of interest to you. Where we have your consent or it is in our legitimate interests to do so, we may do this by post, email, or text message (SMS).

We will only ask whether you would like us to send you marketing messages when you tick the relevant boxes when you complete our online order form for the first time.

If you have previously agreed to being contacted in this way, you can unsubscribe at any time by:

 
What are your rights?


Right to access:
You have the right to request information about the personal data we hold on you at any time. Please contact Customer Service and we will provide you with your personal data.

Right to rectification:
You have the right to request rectification of your personal data if the information is incorrect, including the right to have incomplete personal data completed.

Right to erasure:
You have the right to erase any personal data processed by Nordiina at any time except for the following situations:

  • you have an ongoing matter with Customer Service
  • you have an open order which has not yet been shipped or partially shipped
  • if you are suspected or have misused our services within the last four years
  • if you have made any purchase, we will keep your personal data in connection to your transaction for book-keeping purposes


Right to object at any time to processing of personal information concerning you for direct marketing

Right to object to decisions being taken by automated means which produce legal effects concerning you or similarly significantly affect you

How do you exercise your rights?

We take data protection very seriously. You can always contact us at legal@nordiina.com to exercise any of your rights. Please let us have enough information to identify you (eg user name, registration details), proof of your identity and address (a copy of your driving license or passport and a recent utility or credit card bill), and the information to which your request relates including any account or reference numbers, if you have them.

Seller Responsibilities

If you sell using our Services, you may receive and determine what to do with certain personal information. Your privacy responsibilities, including when you act as an independent data controller (someone who decides what personal data to collect and the purpose you use the data for) are laid out in the Terms and Conditions for Sellers.

Right to complain with a supervisory authority:

We hope that we can resolve any query or concern you raise about our use of your information.

The General Data Protection Regulation also gives you the right to lodge a complaint with a supervisory authority, in particular in a European Economic Area state.

If you have complaints about the way Nordiina processes and protects your personal data and privacy you have the right, at any time, to make a complaint to the Finnish Data Protection Authority, or the competent supervisory authority in your country of residence.

Updates to our Privacy Policy:

We may need to update our Privacy Policy. The latest version of the Privacy Policy is always available on our website. We will communicate any material changes to the Privacy Policy, for example the purpose of why we use your personal data, the identity of the Controller or your rights.

QUESTIONS, CONCERNS OR COMPLAINTS? CONTACT US

If you have any questions or concerns about our privacy practices, we welcome you to contact us by e-mail:legal@nordiina.com.